In this options Name Resolution convert some of the numerical address values into a human readable format. Name resolution can be invaluable while working…

Wireshark 1.6.4 is one of the world's most popular network protocol analyzer. With the following bugs have been fixed and patch fix memory leaks/errors…

Acerca de Wireshark

Wireshark, the new name for Ethereal, is a protocol analyzer, or packet sniffer application, used for network troubleshooting, analysis, software and protocol development, and education. It has all of the standard features of a protocol analyzer. It allows the user to see all traffic being passed over the network (usually an Ethernet network but support is being added for others) by putting the network card into promiscuous mode.

Wireshark is software that understands the structure of different network protocols. Thus it's able to display encapsulation and single fields and interpret their meaning. Wireshark uses Pcap to capture packets, so it can only capture on networks supported by Pcap.

Wireshark (Ethereal) Features

Data can be captured from the wire from a live network connection or read from a capture file.

Captured network data can be browsed via a GUI, or via the TTY-mode tshark program.

Standard three-pane packet browser

Capture files compressed with gzip can be decompressed on the fly

Coloring rules can be applied to the packet list, which eases analysis

Did You Know?

The current stable release of Wireshark is 1.2.8. It supersedes all previous releases, including all releases of Ethereal. You can also download the latest development release (1.3.5) and documentation.